15 



CIAIMS 



10 



15 



20 



25 



35 



for an em:it:y 
che method comp 



Method for issuing an electronic identity 



:rom an identity registration authority, 
ising the steps o£: 

a) issuing a first electronic identity for said 
entity; \ 

b) creating a request for a second electronic 
identity for said entity, the request including an 
identifier of said entity; 

c) sending said request to said identity regis- 
tration author xt 

d) in lesponse to said request, creating an 
identification ^response; 

e) sending said identification response to said 



entity; 



cation response 



f) verifying an acceptability of said identxfi 



3y said entity; 



g) in response said verifying, if said identi- 
fication responses is acceptable, signing digitally said 
identification r<ssponse by said first entity; 

h) sendi^ig said signed response to said iden- 
authority ; 

ing a validity of said digital signa- 
ture and said ijlentif ication response in said signed 
response; and 

j) in response to said verifying, if said digi- 
tal signature and identification response are valid. 



tity registratior 
i) verify 



30 issuing a second 



identity based on said first identity. 



The method of claim 1 further comprising a 



h\/ which said first entity digitally 
f ication response . 

or 2 further compris- 



second entity 
signs said identi, 

3 . The mfithod of claim 1 
ing the steps of : 



checking 
tity is available 



if the information of said second en- 
using said identifier; and 



16 



10 



15 



20 



25 



30 



in resoonse said checking, if said xnformacxon 
is noc available, inquiring che informanion of said 
second encity flrom said first encicy. 

4. The Imechod of claim 2 or 3 wherein said sec- 
ond encicy is iVi control of said first entity. 

5. The bethod of claim 3 wherein said mforma- 
cion of said sicond entity comprises one or more from 
the set containing a unique address of said second en- 
city the name It the holder of said second entxty and 
previous identitW or identities of said second entity. 

6. The itethod of claim 1 further comprising the 

seep of : 

establiihing and encrypting a communxcacion 
channel between said first entiny and said identity 
registration- a..thority to ensure confidential communi- 

c^iiion there between, 

7. The Lerhod of claim 1 further comprising the 

seep of: 

scoring said issued second identity to che da- 
tabase of said Identity registration authority. 

a. The Inethod of claim 1 further comprising che 

step of: , , , 

storing said issued second identity to tne aa- 

tabase of the iUuer of said first electronic identity. 

9 . The Method of claim 1 further comprising nhe 

step of : , 

comblniJg said first and said second electronic 
identities to fdrm a combined electronic identity; and 

storing I said combined electronic identity to 

the database. 

10. Thel method of claim 1 further comprising 

che step of ; 

sending (said issued second Identity to said en- 

^''''^ 11. Thel method of claim 1 further comprising 
the step of •. 
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che database c 



a time stamp to said issued second ideu- 



sendkng said issued second idencicy to a third 

party. 

12 . (The tnechod of claim 1 before the seep of 
issuing said second identity further comprising the 
5 steps of: 

checking if additional guarantees for ensuring 
a validity ofl the first identity are to be acquired; 
and 

xn response to said checking, if additional 
10 guarantees are! needed, acquiring additional guarantees. 

13. THe method of claim 1 further comprising 
the steps of: 

adding 
city; and 

15 storirg said time stamped second identity to 

f said registration authority. 

14. Tftie method of claim 1 further comprising 
the step of 

adding\ into said time stamp a expiration date 
20 of said second! electronic identity. 

15. The method of claim I further comprising 

the steps of; 

adding \ a notarization to said issued second 
identity; and 

2 5 storing said notarized second identity to the 

database of saili registration authority. 

16. Thi method of claim 1 further comprising 
the steps of: 

inquiridig a further identifier code to be added 

3 0 into said signe<i identification response 

receiving said identifier code at said regis- 
tration authority; and 

verifyiilg the validity of said identifier code 
at said registration authority. 
35 17. The 1 met hod of claim 16 wherein said identi- 

fier code inclufles one or more from the set containing 
biometric code lof said first entity, a predetermined 
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character sdring, a fmgerprinr of nhe encicys public 
key. random Wumber,. cercif icane , and a. hash code of nhe 
shared secret between said first entity and said regis- 
tration authc^rity. 

IS. TJie method of claim 1 
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further comprising 
from said identity 



the seeps of: 

creating a first hash code 
request at registration authority; 

sendingi said first hash code to said second en- 
tity; 

creating 



request by said 



a second hash code from said identity 
second entity; and 
verifyiAg a validity of said first hash code by 



comparing it to 



ing of said response 



said second hash code before the sign- 



19. The method of claim 1 or 2 before the step 
of issuing further comprising the steps of: 

a confirmation message to the address 
sdlid additional information of said en- 



sending 
specified in s 
tity ; 

receivin* 
firmation message 
verif yim 

sponse , 

20. The 



a confirmation response to said con- 
at said registration authority; and 
the validity of said confirmation re- 



ethod of claim 19 before the step of 
issuing further cjomprising the step of : 

canceling! said issuing of said second elec- 
tronic identity if said confirmation response is not 
received in a predetermined time period. 

21, The miithod of claim 1 wherein said request 



for issuing said 
initiated by said 



second certificate for said entity is 
third party - 



for 



22. The method of claim 1 wherein said request 
issuing said second certificate for said entity is 



35 initiated by said second entity. 
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23. The method of claim 2 wherein said requesc 
is digitallY signe^ by said first enrxny before sending 

said requesc- j 

24- The mephod of claim 2 wherein saxd request: 

is encrypted befor^ sending said requesc. 

25. The method of claim 1 furcher comprising 
nhe seep of : 

journali2in<3 a log of all cransaccions durxng 
Che issue process of said second electronic idencicy. 

26. The met:hod of claim 2 wherein said second 
the following sec including mobile 



encicy is oae of 



cerminal, mobile phone, personal compucer, sec-cop box. 
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smarc card, camper 
ware agenc , pager 
digical assiscanc 



proof device, security coken, sofc- 
cerminal equipment, and personal 
•DA) , 



